Harmonyos
by Huawei
CVEs (1,067)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-52717 | 0.00 | — | 0.00 | Apr 7, 2024 | Permission verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2023-52716 | 0.00 | — | 0.00 | Apr 7, 2024 | Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module. Impact: Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2023-52715 | 0.00 | — | 0.00 | Apr 7, 2024 | The SystemUI module has a vulnerability in permission management. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2023-52714 | 0.00 | — | 0.00 | Apr 7, 2024 | Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-52713 | 0.00 | — | 0.00 | Apr 7, 2024 | Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | |||
| CVE-2024-30418 | 0.00 | — | 0.00 | Apr 7, 2024 | Vulnerability of insufficient permission verification in the app management module. Impact: Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2024-30417 | 0.00 | — | 0.00 | Apr 7, 2024 | Path traversal vulnerability in the Bluetooth-based sharing module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-30416 | 0.00 | — | 0.00 | Apr 7, 2024 | Use After Free (UAF) vulnerability in the underlying driver module. Impact: Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2024-30415 | 0.00 | — | 0.00 | Apr 7, 2024 | Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2024-30414 | 0.00 | — | 0.01 | Apr 7, 2024 | Command injection vulnerability in the AccountManager module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2024-30413 | 0.00 | — | 0.00 | Apr 7, 2024 | Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability. | |||
| CVE-2022-48621 | 0.00 | — | 0.00 | Feb 18, 2024 | Vulnerability of missing authentication for critical functions in the Wi-Fi module.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-52381 | 0.00 | — | 0.00 | Feb 18, 2024 | Script injection vulnerability in the email module.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability. | |||
| CVE-2023-52380 | 0.00 | — | 0.00 | Feb 18, 2024 | Vulnerability of improper access control in the email module.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-52379 | 0.00 | — | 0.00 | Feb 18, 2024 | Permission control vulnerability in the calendarProvider module.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-52378 | 0.00 | — | 0.00 | Feb 18, 2024 | Vulnerability of incorrect service logic in the WindowManagerServices module.Successful exploitation of this vulnerability may cause features to perform abnormally. | |||
| CVE-2023-52377 | 0.00 | — | 0.00 | Feb 18, 2024 | Vulnerability of input data not being verified in the cellular data module.Successful exploitation of this vulnerability may cause out-of-bounds access. | |||
| CVE-2023-52376 | 0.00 | — | 0.00 | Feb 18, 2024 | Information management vulnerability in the Gallery module.Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2023-52375 | 0.00 | — | 0.00 | Feb 18, 2024 | Permission control vulnerability in the WindowManagerServices module.Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2023-52374 | 0.00 | — | 0.00 | Feb 18, 2024 | Permission control vulnerability in the package management module.Successful exploitation of this vulnerability may affect service confidentiality. |
- CVE-2023-52717Apr 7, 2024risk 0.00cvss —epss 0.00
Permission verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability.
- CVE-2023-52716Apr 7, 2024risk 0.00cvss —epss 0.00
Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module. Impact: Successful exploitation of this vulnerability will affect availability.
- CVE-2023-52715Apr 7, 2024risk 0.00cvss —epss 0.00
The SystemUI module has a vulnerability in permission management. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2023-52714Apr 7, 2024risk 0.00cvss —epss 0.00
Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-52713Apr 7, 2024risk 0.00cvss —epss 0.00
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- CVE-2024-30418Apr 7, 2024risk 0.00cvss —epss 0.00
Vulnerability of insufficient permission verification in the app management module. Impact: Successful exploitation of this vulnerability will affect availability.
- CVE-2024-30417Apr 7, 2024risk 0.00cvss —epss 0.00
Path traversal vulnerability in the Bluetooth-based sharing module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-30416Apr 7, 2024risk 0.00cvss —epss 0.00
Use After Free (UAF) vulnerability in the underlying driver module. Impact: Successful exploitation of this vulnerability will affect availability.
- CVE-2024-30415Apr 7, 2024risk 0.00cvss —epss 0.00
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability.
- CVE-2024-30414Apr 7, 2024risk 0.00cvss —epss 0.01
Command injection vulnerability in the AccountManager module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2024-30413Apr 7, 2024risk 0.00cvss —epss 0.00
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability.
- CVE-2022-48621Feb 18, 2024risk 0.00cvss —epss 0.00
Vulnerability of missing authentication for critical functions in the Wi-Fi module.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-52381Feb 18, 2024risk 0.00cvss —epss 0.00
Script injection vulnerability in the email module.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.
- CVE-2023-52380Feb 18, 2024risk 0.00cvss —epss 0.00
Vulnerability of improper access control in the email module.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-52379Feb 18, 2024risk 0.00cvss —epss 0.00
Permission control vulnerability in the calendarProvider module.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-52378Feb 18, 2024risk 0.00cvss —epss 0.00
Vulnerability of incorrect service logic in the WindowManagerServices module.Successful exploitation of this vulnerability may cause features to perform abnormally.
- CVE-2023-52377Feb 18, 2024risk 0.00cvss —epss 0.00
Vulnerability of input data not being verified in the cellular data module.Successful exploitation of this vulnerability may cause out-of-bounds access.
- CVE-2023-52376Feb 18, 2024risk 0.00cvss —epss 0.00
Information management vulnerability in the Gallery module.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2023-52375Feb 18, 2024risk 0.00cvss —epss 0.00
Permission control vulnerability in the WindowManagerServices module.Successful exploitation of this vulnerability may affect availability.
- CVE-2023-52374Feb 18, 2024risk 0.00cvss —epss 0.00
Permission control vulnerability in the package management module.Successful exploitation of this vulnerability may affect service confidentiality.
Page 22 of 54